Red Hat Bugzilla – Bug 979718
mod_nss documentation should mention TLS 1.1
Last modified: 2015-05-29 09:07:41 EDT
Description of problem:
nss supports TLS 1.1 since 3.14 version and mod_nss picks it up correctly if admin specifies "NSSProtocol TLSv1.1" directive in nss.conf.
Neither documenation, nor comments in nss.conf do mention this fact though so admins may end up with false conclusion that TLS > 1.0 are not supported...
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. look at /usr/share/doc/mod_nss-1.0.8/mod_nss.html and /etc/httpd/conf.d/nss.conf for TLSv1.1
TLS 1.1 support is not advertised at all
* TLS 1.1 should be mentioned at both places
* TLSv1.1 should be default value for NSSProtocol directive (this may need further discussion because of client compatibility issue potential)
documentation could be probably generated so it picks up current values supported by nss
This bug appears to have been reported against 'rawhide' during the Fedora 20 development cycle.
Changing version to '20'.
More information and reason for this action is here:
This bug has been addressed by the patch called 'mod_nss-tlsv1_1.patch'.
mod_nss-1.0.8-24.fc18 has been submitted as an update for Fedora 18.
mod_nss-1.0.8-24.fc19 has been submitted as an update for Fedora 19.
mod_nss-1.0.8-24.fc20 has been submitted as an update for Fedora 20.
mod_nss-1.0.8-24.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.
mod_nss-1.0.8-24.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.
mod_nss-1.0.8-24.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.
This message is a reminder that Fedora 20 is nearing its end of life.
Approximately 4 (four) weeks from now Fedora will stop maintaining
and issuing updates for Fedora 20. It is Fedora's policy to close all
bug reports from releases that are no longer maintained. At that time
this bug will be closed as EOL if it remains open with a Fedora 'version'
Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a currently maintained version, simply change the 'version'
to a later Fedora version.
Thank you for reporting this issue and we are sorry that we were not
able to fix it before Fedora 20 is end of life. If you would still like
to see this bug fixed and are able to reproduce it against a later version
of Fedora, you are encouraged change the 'version' to a later Fedora
version prior this bug is closed as described in the policy above.
Although we aim to fix as many bugs as possible during every release's
lifetime, sometimes those efforts are overtaken by events. Often a
more recent Fedora release includes newer upstream software that fixes
bugs or makes them obsolete.